EUVD-2007-0641

Stack-based buffer overflow in Bloodshed Dev-C++ 4.9.9.2 allows user-assisted remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long line in a .cpp file...

CVE-2007-0643

Stack-based buffer overflow in Bloodshed Dev-C++ 4.9.9.2 allows user-assisted remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long line in a .cpp file...

Sql injection

Multiple SQL injection vulnerabilities in the generatecsv function in classes/class.news.php in X-dev xNews 1.3 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 id, 2 from, and 3 q parameters, different vectors than CVE-2007-0569. NOTE: The provenance of this...

CVE-2007-0630

Multiple SQL injection vulnerabilities in the generatecsv function in classes/class.news.php in X-dev xNews 1.3 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 id, 2 from, and 3 q parameters, different vectors than CVE-2007-0569. NOTE: The provenance of this...

CVE-2007-0630

Multiple SQL injection vulnerabilities in the generatecsv function in classes/class.news.php in X-dev xNews 1.3 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 id, 2 from, and 3 q parameters, different vectors than CVE-2007-0569. NOTE: The provenance of this...

CVE-2007-0630

CVE-2007-0630 describes multiple SQL injection vulnerabilities in the generate_csv function of X-dev xNews 1.3 and earlier. The affected component is generate_csv in classes/class.news.php, with vulnerable parameters (id, from, q). The issue enables remote attackers to execute arbitrary SQL comma...

Dev-C++ 4.9.9.2 CPP File Parsing Local Stack Overflow PoC

No description provided by source. !/usr/bin/env python print "--------------------------------------------------------------" print "Dev-C++ 4.9.9.2 Stack Overflow" print "url: http://www.bloodshed.net/" print "author: shinnai" print "mail: shinnaiatautisticidotorg" print "site:...

devc4992.py.txt

!/usr/bin/env python print "--------------------------------------------------------------" print "Dev-C++ 4.9.9.2 Stack Overflow" print "url: http://www.bloodshed.net/" print "author: shinnai" print "mail: shinnaiatautisticidotorg" print "site: http://shinnai.altervista.org" print...

Dev-C++ 4.9.9.2 - '.CPP' File Parsing Local Stack Overflow (PoC)

!/usr/bin/env python print "--------------------------------------------------------------" print "Dev-C++ 4.9.9.2 Stack Overflow" print "url: http://www.bloodshed.net/" print "author: shinnai" print "mail: shinnaiatautisticidotorg" print "site: http://shinnai.altervista.org" print...

Dev-C++ 4.9.9.2 - .CPP File Parsing Local Stack Overflow (PoC)

Dev-C++ 4.9.9.2 - .CPP File Parsing Local Stack Overflow PoC !/usr/bin/env python print "--------------------------------------------------------------" print "Dev-C++ 4.9.9.2 Stack Overflow" print "url: http://www.bloodshed.net/" print "author: shinnai" print "mail: shinnaiatautisticidotorg" pri...

Dev-C++ 4.9.9.2 CPP File Parsing Local Stack Overflow PoC

Exploit for unknown platform in category dos / poc ========================================================= Dev-C++ 4.9.9.2 CPP File Parsing Local Stack Overflow PoC ========================================================= !/usr/bin/env python print...

Exploits Microsoft Windows NtRaiseHardError Csrss.exe-winsrv.dll Double Free

No description provided by source. ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe-winsrv.dll Double Free ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot co...

CVE-2006-6886

phpwcms 1.2.5-DEV allows remote attackers to obtain sensitive information via a direct request for 1 files.public-userroot.inc.php or 2 files.private.additions.inc.php in include/inclib/, which reveals the path in various error messages...

MS Windows NtRaiseHardError Csrss.exe Memory Disclosure Exploit

No description provided by source. ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe memory disclosure ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot com ///...

Microsoft Windows - NtRaiseHardError Csrss.exe Memory Disclosure

Microsoft Windows - NtRaiseHardError Csrss.exe Memory Disclosure ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe memory disclosure ///////////////////////////////////////// ///// Ruben Santamarta /////...

eXtreme-fusion 4.02 - 'Fusion_Forum_View.php' Local File Inclusion

source: https://www.securityfocus.com/bid/21621/info eXtreme-fusion is prone to a local file-include vulnerability because the application fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts. By combining thi...

CVE-2006-6339

SQL injection vulnerability in sites/index.php in deV!Lz Clanportal DZCP before 1.3.6.1 allows remote attackers to execute arbitrary SQL commands via the show element in a GET request...

CVE-2006-6339

SQL injection vulnerability in sites/index.php in deV!Lz Clanportal DZCP before 1.3.6.1 allows remote attackers to execute arbitrary SQL commands via the show element in a GET request...

CVE-2006-6339

The CVE-2006-6339 entry describes an SQL injection in deV!L`z Clanportal (DZCP) prior to version 1.3.6.1, exploitable via the show parameter in a GET request. This allows remote attackers to execute arbitrary SQL commands. Affected software/function: sites/index.php in DZCP. Root cause: insuffici...

[Full-disclosure] deV!L`z Clanportal - Arbitrary File Upload [061124b]

/ -061124b- | deV!Lz Clanportal - Arbitrary File Upload | / S Y N O P S I S / =================' - access: remote severity: high - deV!Lz Clanportal allows nearly arbitrary files to be uploaded and stored on the server's filesystem, which enables anyone, even without a user account, to upload PHP...